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Reasons For Allowance 

1 . Status of Claims: In the previous office action, dated 3/12/04, claims 6-7, 12, were 
allowed, and claim 18 was rejected. The Applicant has amended claim 18, to contain features of 
claims 6-7, and 12. Thus, claims 6-7, 12, and 18 are allowable for the reasons listed below: 

2. In the prior art of security, fails to disclose or suggest, "a policy server receiving the 
request for allowed operations associated with the authenticated signature", "the policy server 
comparing the authenticated signature with information stored on the policy server", and "policy 
server sending a response to the SAM indicating an access level corresponding to the 
authenticated signature". An example of prior art in security, that fails to disclose or suggest, "a 
policy server receiving the request for allowed operations associated with the authenticated 
signature", "the policy server comparing the authenticated signature with information stored on 
the policy server", and "policy server sending a response to the SAM indicating an access level 
corresponding to the authenticated signature", is Touboul Touboul discloses protecting a client 
from hostile downloadables. Touboul discloses that the system includes security rules defining 
suspicious actions such as write operations. Touboul discloses that when an applet violates a 
security rule it is added to suspicious downloadables database. Prior art of security fails to teach, 
and more specifically Touboul fails to teach or suggest, "a policy server receiving the request for 
allowed operations associated with the authenticated signature", "the policy server comparing the 
authenticated signature with information stored on the policy server", and "policy server sending 
a response to the SAM indicating an access level corresponding to the authenticated signature". 
There is no authentication of applets in Touboul. The security rules that are disclosed in 
Touboul deal with write operations, overuse of system memory, overuse of processor time. 
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3. In the prior art of networking, prior art fails to disclose or suggest, "a policy server 
receiving the request for allowed operations associated with the authenticated signature", "the 
policy server comparing the authenticated signature with information stored on the policy 
server", and policy server sending a response to the SAM indicating an access level 
corresponding to the authenticated signature", an example or prior art in networking that does 
not disclose the limitations above, is Riggins. Riggins discloses a web engine includes a servlet 
host engine, which downloads security applets including an authentication applet to the client 
computer and accordingly executes an authentication servlet of servlets for performing 
identification and authentication services. 

4. In the art of security levels, that fails to disclose or suggest, "a policy server receiving the 
request for allowed operations associated with the authenticated signature", "the policy server 
comparing the authenticated signature with information stored on the policy server", and policy 
server sending a response to the SAM indicating an access level corresponding to the 
authenticated signature", is Golan. Golan discloses that every monitored application executes in 
a secure sandbox. The secure sandbox enables downloaded activex controls to run within 
limitations configurable by a security policy. Golan does not disclose or suggest, "a policy 
server receiving the request for allowed operations associated with the authenticated signature", 
"the policy server comparing the authenticated signature with information stored on the policy 
server", and policy server sending a response to the SAM indicating an access level 
corresponding to the authenticated signature". 

5. In the art of non-patent literature, fails to teach or suggest, "a policy server receiving the 
request for allowed operations associated with the authenticated signature", "the policy server 
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comparing the authenticated signature with information stored on the policy server", and policy 
server sending a response to the SAM indicating an access level corresponding to the 
authenticated signature", an example is Yerxa. Yerxa teaches that the Java virtual machine lets 
applets or applications execute within the sandox. Yerxa does not teach or suggest, "a policy 
server receiving the request for allowed operations associated with the authenticated signature", 
"the policy server comparing the authenticated signature with information stored on the policy 
server", and policy server sending a response to the SAM indicating an access level 
corresponding to the authenticated signature". 

6. Another example of non-patent literature, that fails to teach or suggest, "a policy server 
receiving the request for allowed operations associated with the authenticated signature", "the 
policy server comparing the authenticated signature with information stored on the policy 
server", and policy server sending a response to the SAM indicating an access level 
corresponding to the authenticated signature", is Karve. Karve teaches Javasoft introduced the 
ability to sign applets. Karve teaches that a digital signature can be included within an applet. 
The CA of Karve verifies the identity of the holder. However, Karve fails to teach or suggest, "a 
policy server receiving the request for allowed operations associated with the authenticated 
signature", "the policy server comparing the authenticated signature with information stored on 
the policy server", and policy server sending a response to the SAM indicating an access level 
corresponding to the authenticated signature". 
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Conclusion 



Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Jenise E. Jackson whose telephone number is (571) 272-3791. 
The examiner can normally be reached on M-Th (6:00 am - 3:30 p.m.) alternate Friday's. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (571) 272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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